Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/65e296-72aa-488a-a433-9aa4d2f9aff1/1/gHAu016O_uBMqrmZhCa8PUPK6yw.mft
File:                     gHAu016O_uBMqrmZhCa8PUPK6yw.mft (raw, json)
Hash identifier:          d/b0fDt4RD1wOhlq0/gzHbTIY7RKM3o7ysYtUe6F/ec=
Subject key identifier:   C5:4B:AF:A8:7D:03:F9:DB:4B:61:1B:9F:6C:0E:0D:45:E2:B8:1E:1C
Authority key identifier: 80:70:2E:D3:5E:8E:FE:E0:4C:AA:B9:99:84:26:BC:3D:43:CA:EB:2C
Certificate issuer:       /CN=80702ed35e8efee04caab9998426bc3d43caeb2c
Certificate serial:       019034730A7E5DD84CE6E08FAF288A818615
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gHAu016O_uBMqrmZhCa8PUPK6yw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9a/65e296-72aa-488a-a433-9aa4d2f9aff1/1/gHAu016O_uBMqrmZhCa8PUPK6yw.mft
Manifest number:          021B
Signing time:             Thu 20 Jun 2024 07:01:12 +0000
Manifest this update:     Thu 20 Jun 2024 07:01:12 +0000
Manifest next update:     Fri 21 Jun 2024 07:01:12 +0000
Files and hashes:         1: gHAu016O_uBMqrmZhCa8PUPK6yw.crl (hash: IJ5z3r+nFXSmkpSlrLOKTxZ3aXrIsr2kaKmW0e6axPI=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9a/65e296-72aa-488a-a433-9aa4d2f9aff1/1/gHAu016O_uBMqrmZhCa8PUPK6yw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9a/65e296-72aa-488a-a433-9aa4d2f9aff1/1/gHAu016O_uBMqrmZhCa8PUPK6yw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gHAu016O_uBMqrmZhCa8PUPK6yw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 21 Jun 2024 03:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:34:73:0a:7e:5d:d8:4c:e6:e0:8f:af:28:8a:81:86:15
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=80702ed35e8efee04caab9998426bc3d43caeb2c
        Validity
            Not Before: Jun 20 07:01:12 2024 GMT
            Not After : Jun 21 07:01:12 2024 GMT
        Subject: CN=c54bafa87d03f9db4b611b9f6c0e0d45e2b81e1c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:0c:ab:af:db:78:27:00:6d:e5:01:42:4b:94:
                    76:29:3d:6d:a5:01:0a:d5:05:d1:24:63:2f:81:58:
                    19:9d:c8:ff:46:a2:d5:8b:85:cc:54:4b:24:22:34:
                    25:c2:36:a7:e3:b2:6a:f3:07:1d:6c:2b:23:22:b1:
                    fd:7d:5f:d2:a6:9c:9e:d8:37:5d:bc:d7:d2:a8:af:
                    a9:fa:d8:bb:82:14:e7:5d:f6:71:a6:1f:c5:1e:bf:
                    ce:8e:e9:75:db:4f:17:2c:4d:ce:62:e4:bb:b3:2a:
                    85:2d:3d:b3:74:63:74:8f:fc:72:af:32:bd:54:b1:
                    9a:28:15:55:22:18:7c:30:43:79:f0:f8:55:40:ff:
                    01:ae:a1:cb:c3:96:a7:5c:54:bc:f3:9a:a2:59:d7:
                    7c:b0:1a:10:77:05:20:d0:8e:a5:f2:2e:9e:c7:81:
                    e5:05:26:13:97:f0:42:2e:00:b0:66:0a:be:df:4d:
                    a1:3f:1e:25:1e:1a:6c:ea:71:6d:25:19:16:5b:0b:
                    1f:1c:c5:e5:c7:0e:a9:6d:9c:09:59:ce:0e:6c:20:
                    41:ad:fb:f4:b9:ed:24:58:71:93:d2:0a:36:ac:e1:
                    1a:46:b0:9f:e0:9d:57:eb:a9:77:9f:d2:62:c7:2f:
                    70:f6:90:36:1c:d0:5c:6e:de:ba:e5:10:4e:be:94:
                    2f:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:4B:AF:A8:7D:03:F9:DB:4B:61:1B:9F:6C:0E:0D:45:E2:B8:1E:1C
            X509v3 Authority Key Identifier:
                keyid:80:70:2E:D3:5E:8E:FE:E0:4C:AA:B9:99:84:26:BC:3D:43:CA:EB:2C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gHAu016O_uBMqrmZhCa8PUPK6yw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/65e296-72aa-488a-a433-9aa4d2f9aff1/1/gHAu016O_uBMqrmZhCa8PUPK6yw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/65e296-72aa-488a-a433-9aa4d2f9aff1/1/gHAu016O_uBMqrmZhCa8PUPK6yw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:1c:b1:3d:2f:1c:2c:8c:aa:56:7f:a7:db:c7:f0:2b:cd:a8:
         b1:af:c9:85:d3:21:37:1f:ac:e1:9d:2b:6e:84:9d:7e:85:d0:
         44:b8:df:c1:e2:2a:65:ad:c5:8f:a8:7a:2b:4e:07:0f:85:e5:
         3a:4e:9c:92:fe:3d:b2:27:e4:87:06:15:07:79:e2:e2:95:57:
         66:b5:d8:41:8e:01:ad:b1:9c:13:fd:ea:e7:ee:3e:d0:85:66:
         30:b8:13:b9:d9:34:f1:4c:ca:c8:dd:30:33:cc:f9:74:5f:16:
         df:01:af:16:51:e0:43:f5:da:5e:67:fd:40:28:1a:d3:3c:f5:
         a4:57:5e:24:e1:97:94:81:51:2d:33:37:fd:32:32:b8:18:a1:
         0e:f8:08:bf:f9:d5:95:23:26:69:a1:94:50:73:2f:ce:59:92:
         ef:be:d5:a9:45:0a:69:c4:70:6b:54:14:1f:4a:eb:4b:f5:02:
         40:ff:1b:d4:be:31:a5:e4:3e:25:8b:ad:75:22:a0:de:9e:1f:
         18:35:62:95:cd:cf:c0:a4:b5:6c:e9:d5:97:6f:a6:e5:de:02:
         08:54:24:fa:c8:86:bf:fa:12:cc:59:06:3f:0b:b1:74:bd:26:
         ad:9b:65:66:70:e3:43:f9:b3:7f:67:16:d9:8e:8c:4c:08:50:
         73:97:f4:37
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZA0cwp+XdhM5uCPryiKgYYVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwNzAyZWQzNWU4ZWZlZTA0Y2FhYjk5OTg0MjZiYzNkNDNj
YWViMmMwHhcNMjQwNjIwMDcwMTEyWhcNMjQwNjIxMDcwMTEyWjAzMTEwLwYDVQQD
EyhjNTRiYWZhODdkMDNmOWRiNGI2MTFiOWY2YzBlMGQ0NWUyYjgxZTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Qyrr9t4JwBt5QFCS5R2KT1tpQEK
1QXRJGMvgVgZncj/RqLVi4XMVEskIjQlwjan47Jq8wcdbCsjIrH9fV/Sppye2Ddd
vNfSqK+p+ti7ghTnXfZxph/FHr/Ojul1208XLE3OYuS7syqFLT2zdGN0j/xyrzK9
VLGaKBVVIhh8MEN58PhVQP8BrqHLw5anXFS885qiWdd8sBoQdwUg0I6l8i6ex4Hl
BSYTl/BCLgCwZgq+302hPx4lHhps6nFtJRkWWwsfHMXlxw6pbZwJWc4ObCBBrfv0
ue0kWHGT0go2rOEaRrCf4J1X66l3n9Jixy9w9pA2HNBcbt665RBOvpQvQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMVLr6h9A/nbS2Ebn2wODUXiuB4cMB8GA1UdIwQY
MBaAFIBwLtNejv7gTKq5mYQmvD1DyussMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0hBdTAxNk9fdUJNcXJtWmhDYThQVVBLNnl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS82NWUyOTYtNzJhYS00ODhhLWE0MzMt
OWFhNGQyZjlhZmYxLzEvZ0hBdTAxNk9fdUJNcXJtWmhDYThQVVBLNnl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS82NWUyOTYtNzJhYS00ODhhLWE0MzMtOWFhNGQyZjlhZmYx
LzEvZ0hBdTAxNk9fdUJNcXJtWmhDYThQVVBLNnl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhRyxPS8c
LIyqVn+n28fwK82osa/JhdMhNx+s4Z0rboSdfoXQRLjfweIqZa3Fj6h6K04HD4Xl
Ok6ckv49sifkhwYVB3ni4pVXZrXYQY4BrbGcE/3q5+4+0IVmMLgTudk08UzKyN0w
M8z5dF8W3wGvFlHgQ/XaXmf9QCga0zz1pFdeJOGXlIFRLTM3/TIyuBihDvgIv/nV
lSMmaaGUUHMvzlmS777VqUUKacRwa1QUH0rrS/UCQP8b1L4xpeQ+JYutdSKg3p4f
GDVilc3PwKS1bOnVl2+m5d4CCFQk+siGv/oSzFkGPwuxdL0mrZtlZnDjQ/mzf2cW
2Y6MTAhQc5f0Nw==
-----END CERTIFICATE-----
Generated at Thu Jun 20 09:29:15 2024 by rpki-client on console-fra.rpki-client.org